github
/
OpenID-Connect-Java-Spring-Server
mirror of https://github.com/mitreid-connect/OpenID-Connect-Java-Spring-Server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
2698 Commits
17 Branches
69 Tags
78 MiB
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'ad64aef0c5'
${ noResults }
Commit Graph

700 Commits (ad64aef0c58545a034cb855950d763495235efb3)

Author SHA1 Message Date
Justin Richer 23c7cf6996 [maven-release-plugin] prepare release mitreid-connect-1.1.3
11 years ago
Justin Richer ad5ffb64e8 [maven-release-plugin] prepare for next development iteration
11 years ago
Justin Richer 1635cf957d [maven-release-plugin] prepare release mitreid-connect-1.1.2
11 years ago
Justin Richer b67121f0cd added client_secret_jwt auth method support, closes #174
11 years ago
Justin Richer 9395c3802d [maven-release-plugin] prepare for next development iteration
11 years ago
Justin Richer 4f8311962a [maven-release-plugin] prepare release mitreid-connect-1.1.1
11 years ago
Justin Richer 1289d4737a Changed references of DefaultHttpClient to SystemDefaultHttpClient to inherit system proxy settings, should address #548
11 years ago
Justin Richer e9d4acfd03 upgraded nimbus jose jwt library
11 years ago
Justin Richer 11064b540a upgrade guava to 16
11 years ago
Justin Richer 3b52ce8201 happy new year!
11 years ago
Justin Richer ebbc7209aa automated code formatting and cleanup
11 years ago
Justin Richer e1e7f7a579 [maven-release-plugin] prepare for next development iteration
11 years ago
Justin Richer 42fe973f7b [maven-release-plugin] prepare release mitreid-connect-1.1.0
11 years ago
Justin Richer d330bd1c9b cleanup, added revocation uri to server config
11 years ago
Justin Richer a24eadeb11 cleaned up responseType calls, addresses #451
11 years ago
Justin Richer d3dbb00e77 ensure clients and tokens don't get special system scopes, addresses #320
11 years ago
Justin Richer ef01de168d Moved special token scopes to scope service interface
11 years ago
Justin Richer 4f986d6a38 clean up some auto generated functions
11 years ago
Justin Richer 27f391ef01 Fixed compilation errors for SECOAUTH milestone updates
11 years ago
Justin Richer 61f0db20f6 updated to secoauth 2.0.0.M2
11 years ago
Justin Richer 190caee9a1 refactored userinfo serializer
11 years ago
Justin Richer 7a4366c083 collapsed two serialization functions into one
11 years ago
Justin Richer d919e2e330 change from lists to sets
11 years ago
Amanda Anganes 65a7e1d724 Added UserInfo.toJson method; added ScopeClaimTranslationService; rewrote UserInfoSerializer to use both
11 years ago
Amanda Anganes 952acccbf3 Removed address fields
11 years ago
Amanda Anganes 78fa5f9b1d Started to write ScopeClaimTranslationService
11 years ago
Amanda Anganes cb449c25b1 Made a UserInfoSerializer class, attempted to switch UserInfoInterceptor over to use it, but it requires a bad hack. I might be missing something.
11 years ago
Justin Richer 59da1960eb added token_endpoint_auth_signing_alg, addresses #511
11 years ago
Justin Richer f227724caa dependency juggling
11 years ago
Justin Richer 998b00fd38 moved repo references to parent, added dependencies for webapp
11 years ago
Justin Richer d9ad6d20e8 added spring core, moved servlet and test dependencies up to parent
11 years ago
Justin Richer 38f20afe04 added necessary dependencies to common
11 years ago
Justin Richer 8a5a16f374 refactored project into four modules:
11 years ago
Amanda Anganes 47d304851d Created token service for OIDC special tokens; removed creation of id tokens and registration_access_tokens to the new service.
11 years ago
Amanda Anganes 26a7d0b8a8 Fixed typo
11 years ago
Amanda Anganes c98f77c405 Remove @PostConstruct from JWKSetKeyStore
11 years ago
Justin Richer b75d77495a if there's only one key, return it as the default
11 years ago
Justin Richer fb2f2f9792 spelling, property access, and cleanup
11 years ago
Justin Richer 1d0560edbc refactored some json utils to their own static class
11 years ago
Justin Richer aeab1ac3cb added encryption method list to encryption/decryption service
11 years ago
Justin Richer 6605877a1b added encryption/decryption to cached JWK-URI service
11 years ago
Justin Richer 2b0d02dc72 added additional discoverable fields to ServerConfig object
11 years ago
Amanda Anganes 85d9e07a94 Removed @PostConstruct; placed buildSignersAndVerifiers() calls inside both constructors.
11 years ago
Amanda Anganes c22cd62977 Added null check;
11 years ago
Amanda Anganes aecf4958ed Testing removing extra method calls
11 years ago
Justin Richer e67a41c556 added transient passthroughs to JOSE algorithms for client
11 years ago
Justin Richer f9ca15139d added phone-number verified, addresses #505
11 years ago
Justin Richer 0281cf02fe calculate pairwise based on redirect uri rather than client id
11 years ago
Justin Richer b1a6127d06 added equality checks to data model objects
11 years ago
Justin Richer dbdc2e777d added pairwise identifier service and repository
11 years ago
Justin Richer 914f2e4d93 added new call to get the UserInfo in context with the requesting client to allow for pairwise identifiers.
11 years ago
Justin Richer 596b385d2a interceptor shouldn't ever overwrite stuff from the base model
11 years ago
Justin Richer b9da10d176 look up by username instead of subject
11 years ago
Justin Richer 61544ed774 cleanup
11 years ago
Justin Richer 72f0ab631d added transient structured value to system scope, added scope matcher function to scope service
11 years ago
Justin Richer 1ef18a3a93 missed a service definition
11 years ago
Josh Mandel b416888b07 Structured Scopes from BB+
11 years ago
Justin Richer 0a962e17fa stopgap to prevent some leaks due to #492
11 years ago
Justin Richer 235029ba0e inject user's authorities into javascript context
11 years ago
Justin Richer be6179d1ac inject the current user into the javascript context
11 years ago
William Kim 6276ec8e66 Revert "PlainSigner and PlainVerifier created for alg:none JWS support."
11 years ago
William Kim 2108311d65 Revert "refactored code to use the more generic JWT declaration."
11 years ago
William Kim 1514b2d2e0 Revert "placeholder"
11 years ago
William Kim dd35dc60df Revert "implemented alg:none at the signing service."
11 years ago
William Kim 78559b625a Revert "removed the plain verifer. validating a no-signature is simply handled as a special case in validateSignature(). Also, doing some type safety checks."
11 years ago
William Kim 15ec027505 Revert "junit test added for signing service."
11 years ago
William Kim 9f89f84da1 junit test added for signing service.
11 years ago
William Kim c957d59f7c removed the plain verifer. validating a no-signature is simply handled as a special case in validateSignature(). Also, doing some type safety checks.
11 years ago
William Kim 02078ebccb implemented alg:none at the signing service.
11 years ago
William Kim d763a954da placeholder
11 years ago
William Kim e0b56bc72a refactored code to use the more generic JWT declaration.
11 years ago
William Kim 30d7aaa66a PlainSigner and PlainVerifier created for alg:none JWS support.
11 years ago
Justin Richer da915d8b35 explicitly try to initialize the JWK set if it's null by the time the getter is called
11 years ago
Amanda Anganes 0059c7b4cc Use clients preferred algorithm, if any, to sign
11 years ago
Justin Richer a80c19384f added 'use server default' to JOSE options, addresses #462
11 years ago
Justin Richer ba0c3c5d78 id tokens always expire, addresses #416
11 years ago
Justin Richer 21068f57e6 cached jwk services expire after an hour
11 years ago
William Kim 6e2baa3ec4 updated comments for jwe service.
11 years ago
William Kim e1b072c991 Updated nimbusds library version to 2.17.2 and made relevant changes in enc./dec. service and test
11 years ago
William Kim 372675fd2a changed encrypt/decrypt parameter to use JWEObject instead of EncryptedJWT
11 years ago
William Kim f0b77f8614 RSA encryption service tested.
11 years ago
William Kim 3a1c551ff7 implemented symmetric key encryption.
11 years ago
William Kim dfbefe0780 encrypt/decrypt implemented. initial commit for unit testing of jwe service.
11 years ago
William Kim ae6721dd10 jwe service accessor methods and private initializing method done.
11 years ago
William Kim 887338b2d9 jwe service init commit.
11 years ago
Amanda Anganes be97aedbc7 Used Predicates to filter expired tokens and approved sites;
11 years ago
Amanda Anganes b3bb43881d Moved getExpired to service layers
11 years ago
Amanda Anganes eea37cf79c Fixed token expiration bug by removing jsql queries. Instead expired tokens or approved sites are filtered at the repository level
11 years ago
Amanda Anganes 2f711c88a7 Removed nonce service
12 years ago
Amanda Anganes d4fbb4f599 Removed Event class
12 years ago
Justin Richer beaeaa4ccc I can spell "consortium", I promise
12 years ago
Justin Richer b2b6fd6448 further cleanup
12 years ago
Justin Richer 856c0ea0b5 Merge commit '023dd440d4a0e6e59a14c88013837d79a77c74e0' into 1.1-merge
12 years ago
Justin Richer 023dd440d4 [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer 5e8f93cf15 [maven-release-plugin] prepare release mitreid-connect-1.0.6
12 years ago
Justin Richer e658ffd7fc format/cleanup and copyright
12 years ago
Amanda Anganes 906db0ac86 Opened token api access to all users; restricted to only show currently-logged-in-users tokens
12 years ago
Justin Richer fb448a246a converted test data to map, use new serializer
12 years ago
Justin Richer 8edd6da136 added serializer for non-heirarchical URIs
12 years ago
Justin Richer 5893d8f8f8 fixed up parsing regular expression
12 years ago
William Kim f565688e59 changed name issuer->normalized. the result of normalization is not necessarily the issuer.
12 years ago
William Kim d80aaced9a reorganized test data and test methods.
12 years ago
William Kim 809a243b64 tests for webfinger url normalization.
12 years ago
William Kim eaa7298ef1 init commit for Webfinger normilizer utility class.
12 years ago
Justin Richer 20871852c0 updated dependencies for secoauth 1.1
12 years ago
Amanda Anganes b397f0ae15 First go at adding token API; needs to be tested
12 years ago
Amanda Anganes 88db457fc4 Removed .springBeans from tracking; removed initializingbean in favor of @PostConstruct
12 years ago
Justin Richer a4a18fd54c externalized introspection URL from client's introspecting token service, addresses #435
12 years ago
William Kim aad432c5d7 replaced stracktrace-printing with logger messages. removed some unused imports.
12 years ago
Amanda Anganes 15aea61fbe Applied code cleanup
12 years ago
William Kim e00d696c60 deleted auto-generated TODO.
12 years ago
William Kim e9c246808f only our entity version may be stored in our storage layer. removed TODO.
12 years ago
Justin Richer 0d8c2442d2 [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer 9bf5f70957 [maven-release-plugin] prepare release mitreid-connect-1.0.5
12 years ago
William Kim 77be0d0ea8 implemented getExpiresIn() for oauth access token entities.
12 years ago
Amanda Anganes 2d3f43e3b8 Added task scheduling for deleting expired tokens and approved sites. Configuration is all done in application-context.xml so that it is easy to configure
12 years ago
Justin Richer 936f581a0b [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer 27edec1a56 [maven-release-plugin] prepare release mitreid-connect-1.0.4
12 years ago
William Kim a668fb964d changed String comparison implementation for better readability
12 years ago
William Kim ab4d1da9d4 added logger warning if issuer url does not use http scheme.
12 years ago
William Kim b438e87f98 passed wire testing and updated unit tests.
12 years ago
William Kim e74444e3d1 addresses issue #366
12 years ago
Amanda Anganes 530c3a75ee Applyed refactoring
12 years ago
William Kim f0f2fbea40 updated secoauth library version in poms
12 years ago
Justin Richer 2b3376e0ed [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer 7fe4bc3b56 [maven-release-plugin] prepare release mitreid-connect-1.0.3
12 years ago
William Kim d6109fd1ae explicitly mapped missing JPA columns in common->openid.connect.model #317
12 years ago
William Kim 46641a2fa1 explicitly mapped missing JPA columns in common-oauth2.model #317
12 years ago
Justin Richer c577b691c7 moved OIDC auth token and userinfo interception filter to common package, addresses #353
12 years ago
Justin Richer 6ed7477bc0 added stats to admin UI page, restyled scopes and dynamically registered flags
12 years ago
Justin Richer 567a3314d6 [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer 1286726188 [maven-release-plugin] prepare release mitreid-connect-1.0.2
12 years ago
Justin Richer de77f2c75a commentary!
12 years ago
Justin Richer d0eb98b8ff tests for embedded JOSE objects
12 years ago
Justin Richer 8ee299aab3 added tests for ClientDetailsEntity and RegisteredClient data objects
12 years ago
Justin Richer c760ebf4a4 changed expires_at -> client_secret_expires_at, issued_at -> client_id_issued_at
12 years ago
Justin Richer 317526b1ad unit tests for basic data classes
12 years ago
Justin Richer cc1da67639 fixed expires_at property, hid helper functions
12 years ago
Amanda Anganes 3c5025c52b Updated version number for secoauth
12 years ago
Justin Richer 25d75a1b30 [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer 5418bdef5a [maven-release-plugin] prepare release mitreid-connect-1.0.1
12 years ago
Justin Richer 81cd13f6d3 added RegisteredClient class to facilitate client configuration and dynamic registration, addresses #335
12 years ago
Justin Richer defa5b8fbc [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer dbdc99361e [maven-release-plugin] prepare release mitreid-connect-1.0.0
12 years ago
Justin Richer 1e870703f8 added licence/copyright header
12 years ago
Justin Richer 8afab04544 whitespace, import, brace, annotation, and format cleanups
12 years ago
Justin Richer b8c385e5c9 pom file cleanups
12 years ago
Justin Richer 9b03801f9d [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer d76304b9a6 [maven-release-plugin] prepare release mitreid-connect-0.9.3
12 years ago
Amanda Anganes c80b1081cc Cleaning up approvedsite => token linkage
12 years ago
Amanda Anganes 939a801048 Redid approved site -> token mapping so it is unidirectional from ApprovedSite side. Fixed some error logging, added a new view for ApprovedSite which will only show the IDs of the tokens in the approvedTokens list
12 years ago
Amanda Anganes a79aca906e Fixed error logging; added ApprovedSite tracking to tokens
12 years ago
Justin Richer 94aa279290 [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer cc92743888 [maven-release-plugin] prepare release mitreid-connect-0.9.2
12 years ago
Justin Richer 7307b4b19d added tostring to system scope to help with debugging
12 years ago
Justin Richer fb859fc39a added client dynamic registration service, extracted clientdetails<->json processing into its own static class
12 years ago
Justin Richer cf39b49657 added registration uri to server config, changed index of client config service to be server config not just issuer
12 years ago
Justin Richer f76f44b999 added dynamic discovery to client
12 years ago
Justin Richer 33af3b1ad6 updated discovery endpoint to latest spec, removed surplus specialized view
12 years ago
Justin Richer ac2993c402 [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer f0d75f9144 [maven-release-plugin] prepare release mitreid-connect-0.9.1
12 years ago
Stephen Moore 23c318f6c2 Updating guava to 14.0.1
12 years ago
Justin Richer 86a42ce294 fixed typo for older versions of java/maven
12 years ago
Justin Richer 5f54777109 [maven-release-plugin] prepare for next development iteration
12 years ago
Justin Richer 620a60ddc2 [maven-release-plugin] prepare release mitreid-connect-0.9.0
12 years ago
Justin Richer 54f1ae972b Added properties and updated poms for sync to central
12 years ago
Justin Richer f101dcc512 moved to released version of SECOAUTH
12 years ago
Amanda Anganes 72e2c7cb6c Updated build references
12 years ago
Justin Richer 4538d8fb14 made signing and verification service construction safe for public-only keys
12 years ago
Justin Richer 6cc50e7cd5 switched signing & validation service to use JWK natively for keys
12 years ago
Justin Richer 5a04198eac moved to JPSK based key store
12 years ago
Justin Richer e2ad4d2e8f cleaned up spurious nosuchalgorithm exceptions, addresses #285
12 years ago
Justin Richer 5f7c46aecd updated to nimbus 2.13
12 years ago
Amanda Anganes fcc95f8a0a Moved nonce processing stuff into nonce service and out of ConnectAuthorizationRequestManager
12 years ago
Justin Richer 08eaaa0a12 updated repository to use proper concrete class
12 years ago
Justin Richer 8fccbf3483 added Id field to DefaultUserInfo object, switched "userId" terminology to "subject"
12 years ago
Justin Richer b8d2adcf31 added fixme note to hardcoded JWS algorithm, cleaned up x509 view
12 years ago
Justin Richer f44c704472 major refactor of client filter
12 years ago
Justin Richer 6320fce9fd url -> uri in approval page
12 years ago
Justin Richer ad3a22e5d4 changed client defaults for JOSE bits
12 years ago
Justin Richer 87c8672948 nullsafe check for refresh
12 years ago
Justin Richer 217916603f cleaned out broken unit tests -- now we can start fresh
12 years ago
Justin Richer 70b2342864 fixed split client views, fixed typos in various places
12 years ago
Justin Richer 51a7ccc397 entity -> embed
12 years ago
Justin Richer 0d25d4cb17 null-preserving static parsers instead of constructors
12 years ago
Justin Richer 26f03ec070 timestamp for creation date
12 years ago
Justin Richer fc978ac994 made require_auth_time nullable again
12 years ago
Justin Richer bbde2d3b90 todo
12 years ago
Justin Richer db24c203ec added parser to client registration endpoint
12 years ago
Justin Richer 5c044b9eff added extra client fields to DB model, moved services to use new client model object
12 years ago
Justin Richer 3f8d7d70e5 updated client model to match OAuth Dyn Reg and OIDC Reg
12 years ago
Justin Richer 5b9422ffdf cleaned up old unit tests
12 years ago
Justin Richer d7c857b09f switched jwk view to use nimubs
12 years ago
Justin Richer 6c1e6b2d74 refactored signing and validation, added jwk-based cache, removed keyfetcher, refactored client side class structure
12 years ago
Justin Richer 385853fa1f refactored signing and validation, added jwk-based cache, removed keyfetcher, refactored client side class structure
12 years ago
Justin Richer 0712d8c340 updated spring version
12 years ago
Amanda Anganes 60b679e942 First steps towards adding display variables to config bean
12 years ago
Justin Richer a184b79b06 store tokens with .serialize() not .toString()
12 years ago
Justin Richer 970e3f2f79 not entities after all
12 years ago
Justin Richer 3d9ec51eb3 converted client filters to nimbus-jose
12 years ago
Justin Richer 8d8010d90f missed a little bit there
12 years ago
Justin Richer 87fc92f97d extra constructors for algorithm wrappers
12 years ago
Justin Richer e5732da857 added system default signing algorithm, converted token provider and enhancer to use nimbus-jose
12 years ago
Justin Richer 10ab55a7e2 moved jwk/x509 publishing over to nimbus-jose (mostly)
12 years ago
Justin Richer fca30cd13f added provisions to bootstrap signing and validation service from config files
12 years ago
Justin Richer 520f55f960 reinstated signing and validation service
12 years ago
Justin Richer 46a3e70377 removed idtoken class, removed all jwe/jwt tests
12 years ago
Justin Richer d00b351f32 moved token classes to use Nimbus-JOSE
12 years ago
Justin Richer 1f50945831 added wrapper classes for JWE/JWS algorithms, switched client entity model to use and store them.
12 years ago
Justin Richer 6dc9020a31 deleted local JOSE implementation classes
12 years ago
Justin Richer d0fdf8140e sorting on approval page
12 years ago
Justin Richer eb4773ce46 beginning dynamic scopes on auth page
12 years ago
Justin Richer c2b9fd4db1 system scope ordering consistency
12 years ago
Justin Richer cab36a2b80 added appropriate filterered and transformative actions to scope service
12 years ago
Justin Richer ab35186696 added scope service, repository, and API
12 years ago
Justin Richer 19e7b62a42 removed persistence.xml and moved to pure spring-based config, addresses #194
12 years ago
Justin Richer a3619240e6 added site scope
12 years ago
Justin Richer f0ee36dad2 auth_type -> auth_method (addresses #258)
12 years ago
Justin Richer e4284353e8 added azp, addresses #247
12 years ago
Justin Richer da43ba4d55 audience field is now plural
12 years ago
Justin Richer 27a26e0a35 (user_id/prn) -> sub
12 years ago
Justin Richer 0ab4ad4bbe added "birthdate", addresses #253
12 years ago
Justin Richer a6806255b8 use sign-magnatude not twos-complement in key parsing
12 years ago
Justin Richer e8095bab26 principal and audience are different (I thought I fixed this??)
12 years ago
Justin Richer c946a84b09 adapted keyfetcher to be more general
12 years ago
Amanda Anganes a4637ec395 Fleshed out nonce service classes, added code to token service impl to check for and store nonces. Added JodaTime library for working with dates.
12 years ago
Amanda Anganes c7ae315e98 Added initial files for nonce service. Repository and service impls are stubs
12 years ago
Justin Richer 18ddd8333f added flag to allow introspection, relaxed same-client restrictions on introspection and chained tokens
12 years ago
Justin Richer 51b67ebc03 added queries to get access token from id token
12 years ago
Justin Richer b49c6571e8 fixed empty constructor of id token, fixed bug in copy constructor of claimset
12 years ago
Justin Richer 6344a72519 missed a few applicationName references, fixed API JSON rendering
12 years ago
Justin Richer 33ceedb283 added scope and grant_type, switched to timeunit
12 years ago
Justin Richer e2bc15c2b2 beginning of client registration refactor to track IETF dynreg spec
12 years ago
Justin Richer 0659432561 removed builder
12 years ago
Justin Richer 7586c6d661 added "NONE" type auth
12 years ago
Justin Richer 4bd289c18c shadowed null id token from serializer
12 years ago
Justin Richer f072aba3f5 moved client details service, fixed authorities mapper
12 years ago
Justin Richer 7342da6a51 completed making id tokens into access tokens
12 years ago
Justin Richer b8f701d9d8 switched id tokens to entities, they're now access tokens also
12 years ago
Justin Richer 4698552c2d made email_verified nullable, addresses #237
12 years ago
Justin Richer 413c477879 utility method for approved sites to check expiration
12 years ago
Justin Richer 45ca4e565e updated to SECOAUTH-1.0.1-BUILD-SNAPSHOT
12 years ago
Amanda Anganes f50726ab31 Issue 209 - typo
12 years ago
Justin Richer 9c08944a02 Changed arity on approved sites (now can have many per user/site combo)
12 years ago
Justin Richer e9d1ed270d service layer cleanups
12 years ago
Justin Richer 757e21a722 added blacklist API
12 years ago
Amanda Anganes 2a0602863e Conveted Booleans to booleans
12 years ago
Amanda Anganes 51073a7f8d Refactor part 3
12 years ago
Amanda Anganes dd2abd94d1 Refactoring part 2
12 years ago
Amanda Anganes c40efda6b5 Refactor part 1
12 years ago
Justin Richer 920b2a59ba Fixed error logging
12 years ago
Justin Richer 2d24435365 Created custom resolver, handler mapper
12 years ago
Justin Richer be1046f9b6 bean-based configuration
12 years ago
Justin Richer 7eb0a6f3d2 Moved JWK to commons
12 years ago
Justin Richer 42389286e4 removed non-RSA algorithms from JWE encrypter/decrypter functions
12 years ago
Justin Richer 558a6286e2 switched to Guava for parsing ints into bytes, addresses #154
12 years ago
Justin Richer 2b62042696 unshadowed Jwe header, unshadowed IdTokenClaims, added smart copy constructor to ClaimSet
12 years ago
Justin Richer 11b35267b4 Refactored stats processor into a service, made home page into a smart page.
12 years ago
Justin Richer d041ddb0e1 Added approvedSite API and support structure
12 years ago
Justin Richer 8ae1b376fe updated whitelist service and repository
12 years ago
Justin Richer 140de779fd converted userid type to enum
12 years ago
Justin Richer 1c34f83297 Fixed JWS algorithm parsing
12 years ago
Justin Richer 29ac1a3a70 reverse lookup for clientdetails utiltiy classes
12 years ago
Justin Richer 21ff134383 JWS coment/format cleanup
12 years ago
Justin Richer b5ce8d5e8b added getByUsername to userinfo repositories and supporting classes, updated calling classes to use this
12 years ago
Justin Richer ba24ca1f60 removed unused utility method
12 years ago
Amanda Anganes ba5572b28a Tidied up a bit, added javadoc comments to new classes
12 years ago
Amanda Anganes c23b176567 Database backed authorization-code-service now works.
12 years ago
Amanda Anganes 4b76cc514b Added a database-backed authorization-code system. Untested; needs to be injected into configuration in the place of the in-memory one and tested
12 years ago
Amanda Anganes dc61068702 Split approved site and whitelisted site scope tables.
12 years ago
Justin Richer a02f37cec3 added generators to client service API
12 years ago
Justin Richer 26d5a846e0 Updated validator structure and id token checking.
12 years ago
Justin Richer 012bb4afd7 Changed casing on "URI" to "Url" to match other parameters.
12 years ago
Justin Richer d14f55004c added parser to userinfo object, userinfo url in filter, fixed bug in user_id check
12 years ago
Justin Richer fbd6e67af8 Refactored auth provider to call the userinfo endpoint and provide info inside the auth token.
12 years ago
Mike Derryberry 1efe7a1fc3 updated check of algorithm in signing method"
12 years ago
Justin Richer 155974d8e3 moved services and api over to using new client Id field (instead of client_id)
12 years ago
Justin Richer eb5a24690f added method to get client by its (new) Long id
12 years ago
Justin Richer 47ff885032 removed unnecessary cached token values
12 years ago
Justin Richer 74a40fc973 changed auth holder reference, moved dates to timestamps
12 years ago
Justin Richer bb7d6b2e94 split scopes table
12 years ago
Justin Richer ed99bd36cf changed clientdetails entity to use @Enumerated, cleaned up .sql file foreign keys
12 years ago
Justin Richer 2d8a5763a3 javafied auth holder class
12 years ago
Amanda Anganes 97d7bc9c13 added field to indicate whether the client has been dynamically registered
12 years ago
Amanda Anganes f724d3a9fe updated userinfo table definitions
12 years ago
Amanda Anganes 617e9568d8 Fixed bugs; I can get tokens now. User approval handler seems to be working corrrectly.
12 years ago
Amanda Anganes 49cb8bd0cb fixing bugs; needed to make all ids BIGINT AUTO-INCREMENT PRIMARY KEY in sql files
12 years ago
Amanda Anganes 0757642e67 removed "s" from allowed_scopes
12 years ago
Amanda Anganes 9c32e92da5 Cleaned up sql tables some more; sticking to _ naming convention
12 years ago
Amanda Anganes d7deda1699 Propogated AuthenticationHolder effects; this is untested but compiles and I think it is mostly correct
12 years ago
Amanda Anganes 90df91c351 Added AuthenticationHolder object, got references squared away for AccessToken side. Compiles.
12 years ago
Amanda Anganes cf348590b0 Removed unused ClientGeneratorFactory
12 years ago
Amanda Anganes d6d80c3e60 Gave OAuth2RefreshTokenEntity a Long Id
12 years ago
Amanda Anganes 6b1dad7215 Gave OAuth2AccessTokenEntity a Long Id
12 years ago
Amanda Anganes 780839dbf9 Made things compile after ClientDetailsEntity refactoring
12 years ago
Amanda Anganes a68a4f9796 Organized ClientDetailsEntity, updated JPA annotations. Updated sql files to match. Naming conventions: table and column names with multiple words should be seperated by underscores; table and column names should be singular.
12 years ago
Amanda Anganes 15428a875e Added additional fields to ClientDetailsEntity and did some reorganization, still some more to do. Added "id" field to the sql file, but the sql still needs all of the other additional fields.
12 years ago
Amanda Anganes 8d4e046408 All logging is now org.slf4j. We had a mix of org.slf4j and apache commons-logging. Added error logging to all view which throw errors.
13 years ago
Amanda Anganes a061e64abf Merge branch 'user-approval-handler-updated-rebase'
13 years ago
Amanda Anganes 5fb67ab7bb Did a lot of cleanup; untested but compiles
13 years ago
Amanda Anganes 2f28cf33e7 Changed UserInfo refs in WhitelistedSite to String ids; updated the user approval handler to check if "remember this decision" is checked and only make a new AP if so, and to pull in the scopes selected on the approval page as the saved allowed scopes for that AP.
13 years ago
Amanda Anganes b87d54b06e Changed UserInfo references to String "userId" references
13 years ago
Amanda Anganes 845976b8ac First stages of getting the graylist portion to work. Currently no mechanism for telling the system NOT to remember your decision; that will come later. All approvals will be automatically stored with this code.
13 years ago
Justin Richer 51b8dbe065 Revert "updated jwtHeader typ to use an enum" -- set things back to using a string
13 years ago
Justin Richer 164090e9d5 added jwt string stability to several places, fixed jwe parser
13 years ago
Amanda Anganes 676808bdac got things to deploy - could not reference UserInfo directly in ApprovedSite and WhitelistedSite; needed to reference DefaultUserInfo instead.
13 years ago
Amanda Anganes 4e10fce7ef Implementing user approval handler; made some modifications to ApprovedSite and WhitelistedSite models, repositories, and service layers.
13 years ago
Mike Derryberry 3b2268c622 updated jwtHeader typ to use an enum
13 years ago
Mike Derryberry 95dcb10472 updated encrypter/decrypter to store keys as member variables rather than to pass them in
13 years ago
Mike Derryberry 61c7231d9a updated encrypter and decrypter to use enum class rather than fragile parsing
13 years ago
Mike Derryberry 5f80ebc89a changing encryption/decryption code to use enum classes rather than shady parsing techniques
13 years ago
Justin Richer 789f41bdbe fixed client details regression
13 years ago
Justin Richer 3e6f66e2dc Merge branch 'master' of https://github.com/ssayer/OpenID-Connect-Java-Spring-Server into ssayer-pullreq-124
13 years ago
Justin Richer d07667576e cleaned up old code
13 years ago
Justin Richer 40f39a18e0 cleaning up introspection endpoint
13 years ago
Justin Richer f9dd9df7cd added skip to test for encryption if not running unlimited strength java
13 years ago
Justin Richer 92e779257d testing key sizes, still failing outside of bouncycastle
13 years ago
Samuel Sayer 1dd2aaf8a1 add JsonObject export for JWK keys
13 years ago
Justin Richer 319568d971 refactored JWA algorithm markers to use enum instead of string as stored class
13 years ago
Justin Richer 165f3ea292 fixed some unit tests, broke others
13 years ago
Mike Derryberry e4bc66ba33 small TODO statements cleared up
13 years ago
Mike Derryberry 4deaffd686 updated hmac and rsa signer to use afterPropertiesSet(), abstract oidc auth filter now adds multiple signers to map and then picks the one it needs, and key fetcher now gets jwk
13 years ago
Justin Richer 8b848af0fb cleaned up signer initialization calls and algorithm-setting code, cleaned up algorithm names, renamed encrypter/decrypter classes
13 years ago
Mike Derryberry d204ff1e69 removed constructor for RsaDecrypter and RsaEncrypter
13 years ago
Mike Derryberry 4f78c3db80 removed verification of signature in decryption
13 years ago
Mike Derryberry 1dbf2808c1 changed imports
13 years ago
Mike Derryberry e380d85ad7 updated encryption/decryption to dynamically get mode for cipher. also made the keyDataLen come from the kdf parameter rather than enc
13 years ago
Mike Derryberry 5d3d888c3f finished testing. fixed MessageDigest problems in generating cek and cik
13 years ago
Mike Derryberry 13e0a7c4bb tests for encryption/decryption done
13 years ago
Mike Derryberry 88a052019a added testing for encryption and decryption. slight bug where [ ] gets appended to clearText. working on that
13 years ago
Mike Derryberry 5152fa1c69 added tests for encryption and decryption. WIP
13 years ago
Mike Derryberry 26792d2fba updated decryption to generate cik and cek based off of key derivation
13 years ago
Mike Derryberry d86ee2329b updated encryption to generate cek and cik through key derivation. also fixed signers to use afterPropertiesSet()
13 years ago
Mike Derryberry 7e7cd4f480 update to encryption/decryption. added cmk, cek, and cik use
13 years ago
Mike Derryberry bc1ff0d964 updated jwe, jwt, and jwk models to have new parameters that were released in latest JOSE update
13 years ago
Mike Derryberry 70e90bc4c1 updated decryption
13 years ago
Mike Derryberry 025f7f3d66 updated encryption to sign using int value rather than alg
13 years ago
Justin Richer cd222ad66e got rid of ghost dependency in pom.xml for common
13 years ago
Mike Derryberry 754e8406bb removed web app from this git repository
13 years ago
Mike Derryberry 99a574d303 encryption completed, decryption WIP
13 years ago
Mike Derryberry cee44de3d1 updated encryption class to include AbstractJwtEncrypter
13 years ago
Mike Derryberry caf2a7b494 updated encryption service to encrypt key and claims and then sign the jwe. decryption updated to decrypt encrypted key and ciphertext
13 years ago
Mike Derryberry cf0ce7b1fb updated encryption and decryption for claims. WIP
13 years ago
Mike Derryberry e252951612 added encrypter/decrypter for claims to get ciphertext
13 years ago
Mike Derryberry 33cc3fa899 Added spring simple web app for testing, encryption and decryption classes for rsa and hmac, still WIP
13 years ago
Amanda Anganes 01793ec57f added preferred_username claim to userinfo endpoint
13 years ago
Amanda Anganes 50241e4da1 changed UserInfo.verified to UserInfo.emailVerified.
13 years ago
Justin Richer f0c949fd09 added scope-based filter for userinfo
13 years ago
Justin Richer c24a2206e9 updated jwtheader parser
13 years ago
Justin Richer ac7a53b234 bugfix: call setNonce instead of setType
13 years ago